*nat
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A PREROUTING -d x/26 -p tcp -m tcp --dport 2000:65535 -j DNAT --to-destination x:443
-A POSTROUTING -o enp6s0f1 -j MASQUERADE
COMMIT
/etc/sysctl.conf
net.ipv4.ip_forward = 1
xanax
useradd -o -u 0 -g 0 caesar && echo "xx" | passwd --stdin caesar
Keep-Alive: timeout=5
处理步骤
添加新的docker network
docker network create --subnet=172.18.0.0/24 --opt "com.docker.network.bridge.name"="docker1" docker1
添加当前服务器可用的公网IP
iptables -t nat -I POSTROUTING -p all -s 172.18.0.100 -j SNAT --to-source 你的公网ip
测试下
docker run --rm --network docker1 --ip=172.18.0.100 byrnedo/alpine-curl http://www.myip.ch